$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/17A27C7E116211EF8FC7E061C4F9AE02.roa File: 17A27C7E116211EF8FC7E061C4F9AE02.roa (raw, json) Hash identifier: OfXLw74eEnD+wALnxMrVwPI67xdf6M5/aHwWE7Uyjy8= Subject key identifier: 17:CC:4E:08:44:32:5B:AD:DE:39:CA:11:28:07:20:D1:FA:7A:FD:2F Certificate issuer: /CN=A91E0C33/serialNumber=80BE930E30649B12ACEE8DC40B575AB7DDE64945 Certificate serial: 7A Authority key identifier: 80:BE:93:0E:30:64:9B:12:AC:EE:8D:C4:0B:57:5A:B7:DD:E6:49:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/17A27C7E116211EF8FC7E061C4F9AE02.roa Signing time: Mon 13 May 2024 19:50:48 +0000 ROA not before: Mon 13 May 2024 19:50:47 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 151844 IP address blocks: 103.249.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.crl rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C33/serialNumber=80BE930E30649B12ACEE8DC40B575AB7DDE64945 Validity Not Before: May 13 19:50:47 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66426f17-7913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:63:aa:58:17:c4:85:3c:e4:b9:20:05:42: cf:3b:c0:90:a0:18:a6:8b:a6:1c:2b:ca:a4:08:cc: 97:5f:28:e9:3e:e8:0c:c7:e1:d4:cb:a4:69:60:00: 38:d9:a9:58:7b:77:9b:74:98:e1:61:04:13:6b:62: 02:d1:87:9f:90:d3:00:e7:18:85:92:7e:5a:6e:8a: 55:33:93:54:95:2f:8e:56:95:a1:94:62:9c:3b:6f: f4:a9:5f:da:13:35:79:82:ea:c6:2f:4d:13:6b:cf: ad:15:b7:85:f4:94:bd:a5:44:a0:b8:9b:1e:e2:d0: f2:08:8b:a6:0b:f8:67:40:bf:4e:e7:e4:f7:2a:b3: 36:4d:23:0c:7f:65:a7:a3:43:6d:4d:54:5d:9f:9b: de:3e:9f:d3:4b:d8:de:0c:18:ab:2b:4d:80:b5:59: f0:fe:2d:df:54:cf:59:f2:46:7f:30:6c:2b:5f:b0: 0d:e8:69:92:53:50:61:5a:e8:e1:e8:c1:0a:60:87: bf:d3:4f:39:20:b1:23:79:53:22:c6:2b:b9:d5:4c: b3:25:5c:f1:61:00:39:be:a6:65:5d:b5:47:31:27: 3c:8e:bb:02:5a:45:31:ef:11:65:5c:69:47:73:be: 7a:a8:7f:0d:e8:2b:2f:31:c7:78:e1:78:43:a4:5a: bc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CC:4E:08:44:32:5B:AD:DE:39:CA:11:28:07:20:D1:FA:7A:FD:2F X509v3 Authority Key Identifier: keyid:80:BE:93:0E:30:64:9B:12:AC:EE:8D:C4:0B:57:5A:B7:DD:E6:49:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/17A27C7E116211EF8FC7E061C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.114.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:fb:e2:5f:2b:f8:6a:4d:65:d7:80:55:32:ac:87:1d:1a:4d: 53:54:ae:ec:d5:44:8a:2a:06:58:73:51:53:d0:f1:b3:81:65: d7:36:43:a0:f0:6d:8f:be:b7:77:19:ca:b8:c2:84:54:a0:69: 1c:28:72:9d:88:ad:1c:e1:b2:ee:8c:8d:7c:a1:58:96:2f:a6: 66:89:cb:48:cb:63:1b:57:31:dd:a0:18:b2:70:f1:c2:e2:43: 42:32:60:62:b4:73:10:a1:ff:71:b5:23:c2:44:1b:43:49:dc: 16:4e:45:0c:53:d9:09:26:18:18:c9:f4:89:d7:a1:c4:e3:75: 09:9d:49:72:3f:4a:6c:18:27:2c:56:54:b7:eb:b5:bc:7f:66: 94:4a:96:36:a1:8b:28:3e:c5:7f:86:4c:4a:72:f2:92:51:f9: 94:c0:2b:ca:b7:4e:1a:62:15:1a:19:92:c6:30:eb:8a:46:14: 3f:4f:b6:07:7d:35:0f:4c:bf:56:da:77:22:45:2f:b9:79:24: f7:50:28:b5:b4:77:48:aa:d6:20:f3:12:ae:0e:b0:f1:73:13: e5:ff:76:3d:d7:cf:49:77:bd:03:a0:49:8e:1c:24:91:d9:3e: 65:4b:8e:c7:ad:4a:6f:bb:c9:b8:48:d7:b1:92:39:54:ff:38: 52:b6:bb:4b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MEMzMzExMC8GA1UEBRMoODBCRTkzMEUzMDY0OUIxMkFDRUU4REM0MEI1NzVBQjdE REU2NDk0NTAeFw0yNDA1MTMxOTUwNDdaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDI2ZjE3LTc5MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8gmOqWBfEhTzkuSAFQs87wJCgGKaLphwryqQIzJdfKOk+6AzH4dTLpGlgADjZ qVh7d5t0mOFhBBNrYgLRh5+Q0wDnGIWSflpuilUzk1SVL45WlaGUYpw7b/SpX9oT NXmC6sYvTRNrz60Vt4X0lL2lRKC4mx7i0PIIi6YL+GdAv07n5PcqszZNIwx/Zaej Q21NVF2fm94+n9NL2N4MGKsrTYC1WfD+Ld9Uz1nyRn8wbCtfsA3oaZJTUGFa6OHo wQpgh7/TTzkgsSN5UyLGK7nVTLMlXPFhADm+pmVdtUcxJzyOuwJaRTHvEWVcaUdz vnqofw3oKy8xx3jheEOkWryJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUF8xOCEQy W63eOcoRKAcg0fp6/S8wHwYDVR0jBBgwFoAUgL6TDjBkmxKs7o3EC1dat93mSUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQzMzLzU0MjY1RjM0NjY4 NzExRUVCOTNEM0Y2Q0M0RjlBRTAyL2dMNlREakJrbXhLczdvM0VDMWRhdDkzbVNV VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0w2VERqQmtteEtzN28zRUMxZGF0OTNtU1VVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEMzMy81NDI2NUYzNDY2ODcxMUVFQjkzRDNGNkNDNEY5QUUwMi8xN0EyN0M3RTEx NjIxMUVGOEZDN0UwNjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf5cjANBgkqhkiG9w0BAQsFAAOCAQEAbPviXyv4ak1l14BV MqyHHRpNU1Su7NVEiioGWHNRU9Dxs4Fl1zZDoPBtj763dxnKuMKEVKBpHChynYit HOGy7oyNfKFYli+mZonLSMtjG1cx3aAYsnDxwuJDQjJgYrRzEKH/cbUjwkQbQ0nc Fk5FDFPZCSYYGMn0idehxON1CZ1Jcj9KbBgnLFZUt+u1vH9mlEqWNqGLKD7Ff4ZM SnLyklH5lMAryrdOGmIVGhmSxjDrikYUP0+2B301D0y/Vtp3IkUvuXkk91AotbR3 SKrWIPMSrg6w8XMT5f92PdfPSXe9A6BJjhwkkdk+ZUuOx61Kb7vJuEjXsZI5VP84 Ura7Sw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org